All Questions
Tagged with single-sign-on kerberos
222
questions
4
votes
2
answers
17k
views
[Error: Unspecified GSS failure. Minor code may provide more information: No key table entry found matching
I have been working on implementing SSO in a NodeJS application using an AD hosted on an azure VM. I am using npm-kerberos in my application. Here is how I have configured everything:
I have created ...
2
votes
3
answers
6k
views
Log out from SSO kerberos
My OSX application is required for authentication based on Kerberos protocol.
For login I'm using WebView (and WKWebView for MAC OSX > 10.9) by load the authorization URL request.
The login works as ...
0
votes
1
answer
348
views
Java 17 Allow RC4 HMAC while keeping allow_weak_crypto as false in krb5.conf
SSO has stopped working in our Spring App. since we upgraded to Java 17 with upgraded Spring libraries.
I am getting following error during authentication which relates to the fact that Java 17 ...
0
votes
1
answer
102
views
Using Kerberos to authenticate Django Application in Corporate Environment
I am trying to use Kerberos and LDAP3 to authenticate my Django Application inside the corporate network. When I am logged in to my corporate computer, I want my application to be able to login ...
0
votes
2
answers
39
views
Kerberos SSO Issue with AD change of upns in Spring Boot Application
So I have a spring boot application that authenticates its users via kerberos and then makes an ldap-search for roles and authorities and such. It is working fine. The problem is, that there will be a ...
0
votes
1
answer
180
views
GSSException Failure unspecified at GSS-API level (Mechanism level: Checksum failed)
We are facing an issue while setting up SSO with Wildfly 26.1.3 (Kerberos5, kdc , Spnego). We are getting the below error in logs while trying to authenticate. Need you assistance on solving the ...
0
votes
0
answers
70
views
Multidomain authorization and SSO via keycloak with kerberos
How to configure keycloak if there are the same user logins in different LDAP servers with Kerberos integration?
We configured user federation: selected ldap provider, configured parameters, set the ...
0
votes
0
answers
44
views
Grant access to Typo3 Middleware using Apache's <Location> when <Location /> is secured using Kerberos SSO
I can't find a way to unlock a middleware within one of my extensions for an an external (other domain) javascript ajax-call:
$.ajax({ type:"GET",
url:'https://intranet....
0
votes
0
answers
187
views
Single sign on with AD Service Account user with Kerberos results in Authentication error
We are running our Servlet based web application on Openshift infrastructure which is running on Wildfly 26 version. We are implementing SSO using Kerberos
We have created an Active Directory service ...
0
votes
0
answers
32
views
Kerberos Implementation in Django
How do i implement an Kerberos SSO in Django?
I am new to Django and need something like a Documentation or Tutorial on how to integrate KErberos and LDAP as SSO in a Django app. I've searched now for ...
1
vote
0
answers
233
views
Why HttpContext.Current.User.Identity.Name might have value before user signed in?
For context: I am working with .Net Framework 4.6.1 ASP.Net app deployed in IIS. Inside app we had implemented SSO authentication with Kerberos (that flow with HTTP 401 and WWW-Authenticate: Negotiate ...
1
vote
0
answers
379
views
Keycloak and Kerberos integration using curl SSO
I have following setup given:
keycloak server at https://auth.example.com
connection with a LDAP provider configuration Kerberos options set in LDAP provider configuration
authentication with ...
0
votes
1
answer
388
views
Saml assertion response does not include all attributes
I'm working on the CAS APEREO SSO IDP 5.3.X.
The IDP is connected to AD, SPNEGO & KERBEROS are enabled.
I setup a service provider to use SAML2 protocol to authenticate users (generate metadata , ...
0
votes
0
answers
216
views
Kerberos SSO with Apache and Zammad not working
I want to introduce the ticket system Zammad with SSO, but after days of configuration it's not working. The LDAP source is Active Directory. I installed it on Debian 12 and switched from Nginx to ...
0
votes
0
answers
375
views
WWW-Authenticate is not being sent with HTML login form of Keycloak
As per this doc and as its item 4 says:
renders the HTML login screen with status 401 and HTTP header WWW-Authenticate: Negotiate.
In the meantime, I don't see anything like this in the response of ...